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AMENDMENTS TO THE CLAIMS 
The listing of claims will replace all prior versions, and listings, of claims in the application: 

LISTING OF CLAIMS 
Claim 1. (Currently AmendecD A multiservic e switching system for implementing a plurality 
of services, the system comprising: 

a service controller, configured to provide service policy and logic associated with the 
plurality of services in response to service requests initiated by end users; and 
a network connection capability comprising: 

a switching device, configured to establish connections over a network; 
a switch controller having a bearer function and a virtual switch control function for 
controlling said switching device based on network policy and logic ; and 

a proxy device that correlates the service requests with respective services of a the 
plurality of services in response to a network connection request to enable the associated service 
policies and logic provided by a the service controller, th e proxy device implem e nting at least one of 
a s e rvic e policy and logic r e lat e d to and initiating a conn e ction and that initiates connections to the 
network via the switch controller based on at least the associated service policy and logic of the 
requested services . 

Claim 2. (Currently Amended) The multis e rvic e switching system of claim 1 , wherein said 
switching device and said switch controller comprise a conventional switch. 

Claim 3. (Currently Amended) The multis e rvic e switching system of claim 2, wherein said 
conventional switch comprises an ATM Switch. 

2 


P19741.A11 

Claim 4. (Currently Amended) The multis e rvic e switching system of claim 1 , wherein said 
switching device and said switch controller comprise a next generation switch. 
Claim 5. (Canceled) 

Claim 6. (Currently Amended) The multis e rvice switching system of claim 1 , wherein said 
switching device includes said switch controller. 

Claim 7. (Currently Amended) A method for controlling network connections based on 
policy and logic of requested services switching plural forms of data , the method comprising: 

receiving, from an initiating customer, a request for at least one service of a plurality of 
services; 

obtaining predetermined data related to the at least one requested service, the predetermined 
data correlating to at least one of a policy and logic corresponding to the requested service; 

instructing the initiating customer to initiate a predetermined setup identifying the requested 
service and, in response to the predetermined setup, initiating a network connection based on the at 
least one policy and logic corresponding to the requested service; 

passing a first predetermined signal across a network in response to the predetermined setup; 

initiating a second predetermined setup, in response to the passed first predetermined signal; 

passing a second predetermined signal across the network in response to the second 
predetermined setup, the second predetermined signal indicating whether to allow the network 
connection based on at least one of policy and logic of the network; and 

providing to the initiating customer a response indicating whether the network connection is 
allowed. 
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Claim 8. (Original) The method of claim 7, wherein obtaining comprises pushing the 
predetermined data. 

Claim 9. (Previously Presented) The method of claim 8, wherein the pushing predetermined 
data comprises pushing the at least one of policy and logic representing at least one of service 
capabilities and service permissions. 

Claim 10. (Original) The method of claim 7, wherein obtaining comprises pulling the 
predetermined data. 

Claim 1 1 . (Original) The method of claim 7, wherein obtaining comprises querying a service 
control module for the predetermined data. 

Claim 12. (Original) The method of claim 7, further comprising using a certificate to specify 
permitted setup parameters. 

Claim 1 3 . (Original) The method of claim 1 2, further comprising encrypting the certificate. 

Claim 14. (Original) The method of claim 13, further comprising assigning a sequence 
number to the encrypted certificate. 

Claim 1 5 . (Original) The method of claim 1 2, wherein the certificate further identifies which 
service allowed the setup. 

Claim 16. (Original) The method of claim 12, further comprising determining whether the 
certificate is valid. 

Claim 17. (Original) The method of claim 12, further comprising preventing reuse of the 
certificate. 

Claim 18. (Original) The method of claim 17, wherein preventing comprises examining a 
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sequence number assigned to the certificate to determine whether the sequence number was seen 
before. 

Claim 19. (Previously Presented) The method of claim 17, wherein preventing comprises 
examining at least one of a time-stamp and a date-stamp to determine whether the at least one of the 
time-stamp and the date-stamp exceeds a predetermined delta value. 

Claim 20. (Currently Amended) A method for switching plural forms of data through a 
n e twork, controlling connections to a network based on policy and logic of requested services, the 
method comprising: 

receiving, at a service controller , a service request initiated by an initiating customer; 

obtaining predetermined data from the service controller related to at least one of policy and 
logic of the requested service; 

establishing a connection to the network using a first predetermined setup, initiated to realize 
the requested service in accordance with the at least one policy and logic of the service; and 

initiating a second predetermined setup to one of accept and reject the requested network 
connection on behalf of the requested service and in accordance with at least one of policy and logic 
of the network. 

Claim 21. (Previously Presented) The method of claim 20, wherein obtaining the 
predetermined data for the requested service comprises using a pushing procedure. 

Claim 22. (Previously Presented) The method of claim 20, wherein obtaining the 
predetermined data for the requested service comprises using a pulling procedure. 

Claim 23. (Previously Presented) The method of claim 20, wherein obtaining the 
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predetermined data for the requested service comprises using a query procedure. 

Claim 24. (Previously Presented) The method of claim 20, further comprising requesting the 
initiating customer to initiate the predetermined setup as a user-to network interface setup. 

Claim 25. (Previously Presented) The method of claim 20, the network comprising an ATM 
network, wherein establishing the network connection to realize the requested service comprises 
transferring the first predetermined setup over the ATM network, the first predetermined setup being 
redirected from a switching device to a the service controller. 

Claim 26. (Original) The method of claim 25, further comprising controlling the switching 
device with a switch controller, the switch controller being integral with the switching device. 

Claim 27. (Original) The method of claim 25, further comprising controlling the switching 
device with a switch controller, the switch controller being integral with the service controller. 

Claim 28. (Previously Presented) The method of claim 20, wherein obtaining the 
predetermined data for the requested service comprises providing a certificate for establishing the 
network connection in combination with the predetermined setup. 

Claim 29. (Previously Presented) The method of claim 28, wherein the certificate specifies at 
least a permitted setup parameter. 

Claim 30. (Original) The method of claim 28, further comprising encrypting the certificate. 

Claim 31. (Original) The method of claim 30, further comprising assigning a sequence 
number to the encrypted certificate. 

Claim 32. (Previously Presented) The method of claim 28, wherein the certificate further 
identifies the requested service, which allowed the setup. 
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Claim 33. (Original) The method of claim 28, further comprising determining whether the 
certificate is valid. 

Claim 34. (Original) The method of claim 28, further comprising preventing reuse of the 
certificate. 

Claim 35. (Original) The method of claim 34, wherein preventing comprises examining a 
sequence number assigned to the certificate to determine whether the sequence number was 
previously examined. 

Claim 36. (Original) The method of claim 34, wherein preventing comprises examining at 
least one of a time-stamp and a date-stamp to determine whether the at least one of the time-stamp 
and the date-stamp exceeds a predetermined delta value. 

Claim 37. (Previously Presented) The method of claim 7, wherein the predetermined setup 
comprises a UNI setup, the first predetermined signal comprises a PNNI protocol, and the second 
predetermined setup comprises a second UNI setup. 

Claim 38. (Original) The method of claim 20, wherein the predetermined setup comprises a 
user-to-network interface setup. 

Claim 39. (Previously Presented) A method for controlling customer access to capabilities of 
a network associated with a network service, the method comprising: 

receiving a request for the network service from a customer system at a service control 
distinct from a network connection capability of the network; 

when the request is authorized, providing a certificate that specifies at least one permitted 
connection setup parameter related to the network service; 
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initiating a network connection setup request, associated with the network service, and 
providing the certificate; and 

enabling a network connection in response to the network connection setup request based on 
the certificate and the at least one permitted connection setup parameter. 

Claim 40. (Previously Presented) The method for controlling user access to capabilities of 
the network according to claim 39, the network comprising an ATM network. 

Claim 41 . (Previously Presented) The method for controlling user access to capabilities of 
the network according to claim 39, the network comprising a packet switched data network. 

Claim 42. (Previously Presented) The method for controlling user access to capabilities of 
the network according to claim 39, further comprising encrypting the certificate. 

Claim 43. (Previously Presented) The method for controlling user access to capabilities of 
the network according to claim 39, further comprising preventing a repeat use of the certificate. 

Claim 44. (Previously Presented) A method for controlling access to network capabilities 
associated with a network service, the method comprising: 

providing a certificate in response to an authorized request for the network service, the 
certificate specifying at least one permitted connection setup parameter related to the network 
service; 

initiating a connection setup request associated with the network service based on the 
certificate, the connection setup request comprising a predetermined connection setup message; 

routing the connection setup request through the network based on the certificate, the 
predetermined connection setup message and the at least one permitted connection setup parameter; 
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allowing the connection setup request based on the certificate, the predetermined connection 
setup message and the at least one permitted connection setup parameter. 

Claim 45. (Previously Presented) The method for controlling user access to capabilities of 
the network according to claim 44, the certificate further specifying at least one of policy and logic of 
the network service. 

Claim 46. (Previously Presented) The method for controlling user access to capabilities of 
the network according to claim 44, the network comprising an ATM network. 

Claim 47. (Previously Presented) The method for controlling user access to capabilities of 
the network according to claim 44 the network comprising a packet switched data network. 

Claim 48. (Previously Presented) A system for controlling user access to capabilities of a 
network associated with a network service, the system comprising: 

a service controller that receives a request for the network service from a user system, 
determines whether the request for the network service is authorized and, when the request is 
authorized, provides a certificate that specifies at least one permitted connection setup parameter 
related to the network service; and 

a network connection capability controller that receives the certificate and a connection setup 
request, the network connection capability initiating a network connection associated with the 
network service and enabling the network connection based on at least one of the connection setup 
request, the certificate and the at least one permitted setup parameter. 
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Claim 49. (Previously Presented) The system for controlling user access to capabilities of the 
network according to claim 48, the network comprising an ATM network. 

Claim 50. (Previously Presented) The system for controlling user access to capabilities of the 
network according to claim 49 the network comprising a packet switched data network. 

Claim 5 1 . (Previously Presented) A method for controlling customer access to capabilities of 
a network associated with a network service, the method comprising: 

receiving from a customer system a request for the network service; 

instructing the customer system to perform a connection setup request, the instructing 
comprising specification of a unique identifier to be included in the connection setup request, the 
unique identifier correlating the connection setup request and the network service; 

receiving from the customer system, at a network connection capability, the connection setup 
request, including the unique identifier; 

processing the connection setup request based on the unique identifier and at least one of 
policy and logic associated with the network service; and 

performing one of establishing a network connection and rejecting the connection setup 
request based on the processing, in accordance with the at least one of service policy and logic. 

Claim 52. (Previously Presented) The method for controlling customer access to capabilities 
of the network according to claim 5 1 , wherein the requested service pushes the at least one of service 
policy and logic into the network connection capability prior to instructing the customer system to 
perform a the connection setup request. 
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Claim 53. (Previously Presented) The method for controlling customer access to capabilities 
of the network according to claim 5 1 , wherein the network connection capability pulls in the at least 
one of service policy and logic from the requested service after receiving the connection setup 
request. 

Claim 54. (Previously Presented) The method for controlling customer access to capabilities 
of the network according to claim 5 1 > wherein the network service instructs the network connection 
capability regarding the processing of the connection setup request based on the at least one of 
service policy and logic from the requested service and information regarding the connection setup 
request provided by the network connection capability in the form of a query. 

Claim 55. (Previously Presented) The method for controlling customer access to capabilities 
of the network according to claim 51, wherein the instructing further comprises a certificate to be 
included in the connection setup request; 

wherein the processing the connection setup request is further based on the certificate; and 

wherein the performing one of establishing a network connection and rejecting the 
connection setup request is in further accordance with the certificate. 

Claim 56. (Previously Presented) A system for controlling customer access to capabilities of 
a network associated with a network service, the system comprising: 

a service controller that receives a request for the network service from a customer system 
and instructs the customer system to perform a connection setup request, the instructing comprising 
specification of a unique identifier to be included in the connection setup request, the unique 
identifier correlating the connection setup request and the network service; and 
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a network connection capability controller that receives the connection setup request, 
including the unique identifier, from the customer system; 

wherein the network connection capability controller processes the connection setup request 
based on the unique identifier and at least one of policy and logic associated with the network 
service, and performs one of establishing a network connection and rejecting the connection setup 
request based on the processing, in accordance with the at least one of policy and logic. 

Claim 57. (Previously Presented) The system for controlling customer access to capabilities 
of the network according to claim 56, wherein the service controller pushes the at least one of policy 
and logic into the network connection capability controller prior to instructing the customer system 
to perform a connection setup request. 

Claim 58. (Previously Presented) The system for controlling customer access to capabilities 
of the network according to claim 56, wherein the network connection capability controller pulls in 
the at least one of policy and logic from the service controller after receiving the connection setup 
request. 

Claim 59. (Previously Presented) The system for controlling customer access to capabilities 
of the network according to claim 58, wherein the service controller instructs the network connection 
capability controller regarding the processing of the connection setup request based on the at least 
one of policy and logic and on information from the connection setup request provided by the 
network connection capability controller in the form of a query. 
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Claim 60. (Previously Presented) The system for controlling customer access to capabilities 
of the network according to claim 56, wherein the service controller further instructs a certificate to 
be included in the connection setup request; 

wherein the network connection capability controller processes the connection setup request 
further based on the certificate; and 

wherein the network connection capability controller performs one of establishing a network 
connection and rejecting the connection setup request in further accordance with the certificate. 
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